Risk Centric Threat Modeling - A Misuse Case based approach

摘要

In fact, security is an inevitable and common concern nowadays, ensuring it early in SDLC may significantly reduce risk, time and effort. Moreover, it enhances reliability and quality of the applications. Consequently, it establishes the confidence of user with the product. Misuse Case, a classical and effective modeling technique, which has been widely used for eliciting and modeling security threats at the requirements stage. However, this technique lacks the ability to model 'assets, vulnerabilities and risk', which are important risk-related concepts. In order to incorporate such risk related concepts, we propose an idea of extending misuse case model in line with the ISSSRM model. Thereby, we propose an extended version of misuse case model, which incorporates 'assets, vulnerabilities and risk-spots'. Further, a modeling process has also been suggested for helping the designers to model security related risks in an effective manner during the requirements phase, itself. Furthermore, the model is validated using a case study on an e-voting system.